Kid@sh.itjust.worksM to Cybersecurity@sh.itjust.worksEnglish · 1 个月前Fake ‘One Battle After Another’ torrent hides malware in subtitleswww.bleepingcomputer.comexternal-linkmessage-square5fedilinkarrow-up111arrow-down10cross-posted to: security@lemmy.mlcybersecurity@infosec.pubpiracy@lemmy.dbzer0.com
arrow-up111arrow-down1external-linkFake ‘One Battle After Another’ torrent hides malware in subtitleswww.bleepingcomputer.comKid@sh.itjust.worksM to Cybersecurity@sh.itjust.worksEnglish · 1 个月前message-square5fedilinkcross-posted to: security@lemmy.mlcybersecurity@infosec.pubpiracy@lemmy.dbzer0.com
minus-squareaaaa@piefed.worldlinkfedilinkEnglisharrow-up4·1 个月前The whole exploit is based on the user clicking on a .lnk shortcut, which then executes commands found in the subtitle text file. Which seems strangely over complicated. How does it really help to involve the subtitles file at all?
minus-squarearti@friendica.worldlinkfedilinkarrow-up1·1 个月前@aaaa if a sufficient amount of vics does exactly that it may work out (like bit error domains, or: artefact of speering vic)
minus-squareWhatAmLemmy@lemmy.worldlinkfedilinkEnglisharrow-up1·1 个月前Hiding executable code in the srt file likely evades various security software.
The whole exploit is based on the user clicking on a .lnk shortcut, which then executes commands found in the subtitle text file.
Which seems strangely over complicated. How does it really help to involve the subtitles file at all?
@aaaa if a sufficient amount of vics does exactly that it may work out (like bit error domains, or: artefact of speering vic)
Hiding executable code in the srt file likely evades various security software.